SSL VPN, routing of ip pool

Forum|Forum|7 years ago
July 26, 2018
1 reply
11281 views

Hi guys!

I have a SSL vpn on my Fortigate - the clients gets their ip addresses from a 192.168.x.x/24 pool. All fine.

I have a neighboring firewall that needs to learn that route over BGP. But... The route is not there - I dont have it in my routing table on either firewalls.. So. how do i get my ssl ip pool routed to other firewalls using bgp ? :) anyone knows ?

Best answer by Toshi_Esumi

First of all, you should have a static route in your FGT for 192.168.x.0/24 toward ssl.root interface. Then enable "redistribute static" in BGP config. If you don't want to redistribute all static routes into BGP, you can set filters w/ prefix-list and/then route-map.

Toshi_EsumiAnswer

SuperUser

First of all, you should have a static route in your FGT for 192.168.x.0/24 toward ssl.root interface. Then enable "redistribute static" in BGP config. If you don't want to redistribute all static routes into BGP, you can set filters w/ prefix-list and/then route-map.

vinceneil666Author

New Member

Hi, yes ofcourse - I got lost in where to actually put the static route. I added it now and my bgp redistributet it :) ..tnx

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded